CVE-2017-9265 on Ubuntu 16.04 LTS (xenial) - medium.
Description:
In Open vSwitch (OvS) v2.7.0, there is a buffer over-read while parsing the group mod OpenFlow message sent from the controller in `lib/ofp-util.c` in the function `ofputil_pull_ofp15_group_mod`.